Are you HIPAA Compliant? Since the HITECH Act passed in 2009, companies’ financial and reputational risk from a security breach is at an all-time high. HIPAA-HITECH compliance is a fundamental risk management issue for C-suites in any organization that remotely touches protected health information – not just covered entities, but business associates as well. Have […]
Archive | April, 2011
Our March 2011 HIPAA-HITECH eNewsletter has been published. Link to our March 2011 HIPAA-HITECH Compliance eNewsletter to learn more … HIPAA-HITECH data protection and security updates, alerts and tips of importance to everyone striving to protect their valuable business, client and patient data.
Earlier this week, OCR levied a $4.3 million fine for HIPAA violations against Cignet Health. Now, just days later, OCR is taking Massachusetts General Hospital and its physicians organization to task, entering into a resolution agreement that includes a $1 million settlement and a requirement for the hospital to take corrective action.
The eleven laws of security provide great seed material for Information Security awareness programs, and can serve as a good refresher for admins too.
Although the HIPAA privacy rule isn’t something we talk about a great deal on this blog, an enforcement decision of this magnitude certainly speaks loudly about the stringency of the HITECH Act. This week Cignet Health in Maryland became the first healthcare organization to be fined for violations of the HIPAA privacy rule.